CVE-2012-10051 HIGH

CVE-2012-10051: Photodex ProShow Producer 5.0.3256 load File Handling Buffer Overflow

Vendor Photodex Corporation
Product ProShow Producer
Weakness CWE-121
Published August 8, 2025
Last update April 7, 2026

CVSS base score

8.4/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Photodex ProShow Producer version 5.0.3256 contains a stack-based buffer overflow vulnerability in the handling of plugin load list files. When a specially crafted load file is placed in the installation directory, the application fails to properly validate its contents, leading to a buffer overflow when the file is parsed during startup. Exploitation requires local access to place the file and user interaction to launch the application.

Key dates

02Disclosure timeline

August 8, 2025 CVE published
April 7, 2026 Record updated